Ipv4-Acls; Gigabit Ethernet Ipv4-Acl Guidelines; Default Settings - Cisco AP775A - Nexus Converged Network Switch 5010 Configuration Manual
Fabric manager configuration guide, release 4.x
Hide thumbs
Also See for AP775A - Nexus Converged Network Switch 5010:
- Reference (886 pages) ,
- Command reference manual (792 pages) ,
- Configuration manual (760 pages)
Table of Contents
Advertisement
IPv4-ACLs
S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m
IPv4-ACLs
This section describes the guidelines for IPv4 access control lists (IPv4-ACLs) and how to apply them
to Gigabit Ethernet interfaces.
For information on creating IPv4-ACLs, see
Note
Lists."
Gigabit Ethernet IPv4-ACL Guidelines
Follow these guidelines when configuring IPv4-ACLs for Gigabit Ethernet interfaces:
•
•
•
Tip
If IPv4-ACLs are already configured in a Gigabit Ethernet interface, you cannot add this interface to an
Ethernet PortChannel group. "See
information on configuring IPv4-ACLs.
Default Settings
Table 53-2
Table 53-2
Parameters
IPv4 MTU frame size
Autonegotiation
Promiscuous mode
Cisco MDS 9000 Family Fabric Manager Configuration Guide
53-6
Only use Transmission Control Protocol (TCP) or Internet Control Message Protocol (ICMP).
Note
Other protocols such as User Datagram Protocol (UDP) and HTTP are not supported in
Gigabit Ethernet interfaces. Applying an ACL that contains rules for these protocols to a
Gigabit Ethernet interface is allowed but those rules have no effect.
Apply IPv4-ACLs to the interface before you enable an interface. This ensures that the filters are in
place before traffic starts flowing.
Be aware of the following conditions:
If you use the log-deny option, a maximum of 50 messages are logged per second.
–
The established option is ignored when you apply IPv4-ACLs containing this option to Gigabit
–
Ethernet interfaces.
If an IPv4-ACL rule applies to a pre-existing TCP connection, that rule is ignored. For example
–
if there is an existing TCP connection between A and B and an IPv4-ACL which specifies
dropping all packets whose source is A and destination is B is subsequently applied, it will have
no effect.
lists the default settings for IPv4 parameters.
Default IPv4 Parameters
Chapter 53
Chapter 42, "Configuring IPv4 and IPv6 Access Control
Configuring IPv4 for Gigabit Ethernet Interfaces, page 53-1
Default
1500 bytes for all Ethernet ports.
Enabled.
Disabled.
Configuring IPv4 for Gigabit Ethernet Interfaces
OL-17256-03, Cisco MDS NX-OS Release 4.x
for
Hide quick links:
Advertisement
Table of Contents
Troubleshooting
